Description:
A vulnerability was reported in the Perl CGI.pm module. A remote user can inject header lines.

The 'CGI.pm' module does not properly filter carriage returns from user-supplied input to be used in Set-Cookie and P3P headers. A remote user may be able to inject new header items or modify header items.